SOC Operations Manager

Job Title
SOC Operations Manager

Overview
We are seeking a SOC Operations Manager to lead day-to-day Security Operations Center (SOC) activities for 24x7 security monitoring, detection, response, and escalation. You will manage SOC personnel across Tier 1, Tier 2, and Tier 3, ensuring continuous operational readiness, process maturity, and service delivery excellence across customer enterprise environments, including on-premises, hybrid, zero trust, and cloud environments. In this role, you will coordinate incident response and major incident escalations, drive continuous improvement, and partner with Threat Intelligence, Threat Hunting, Engineering, Vulnerability Management, and Incident Response teams to improve detection, investigation, and remediation outcomes.

Education Requirements
Bachelor’s degree.

Clearance Requirements
This role requires an active Top Secret clearance.

Work Arrangement
Hybrid, with some on-site requirements in Vienna, VA.

Responsibilities

• Serve as the operational manager for the SOC and is responsible for workforce management, shift scheduling, analyst performance, incident response coordination, and operational reporting.
• Designated point of contact for SOC operations, customer engagement, service delivery issues, and major incident escalations.
• Develop and maintain 24x7 staffing plans, shift schedules, on-call rotations, and surge support capabilities to ensure continuous monitoring and response coverage.
• The role will oversee Tier 1–3 analyst activities, manage incident handling processes, ensure adherence to SLAs and operational metrics, and drive continuous improvement initiatives across SOC operations.
• Coordinate with Threat Intelligence, Threat Hunting, Engineering, Vulnerability Management, and Incident Response teams to ensure effective detection, investigation, and remediation of cybersecurity threats.

Required Qualifications

• 10 years of cybersecurity experience with at least 5 years supporting Security Operations Centers, Incident Response, or Cyber Defense Operations
• Demonstrated experience managing SOC operations, including workforce planning, shift management, and analyst supervision
• Strong understanding of security monitoring, incident response, threat detection, escalation procedures, and cyber defense operations
• Experience with SIEM platforms such as Splunk, Microsoft Sentinel, QRadar, or equivalent security monitoring technologies
• Proven ability to coordinate and lead response activities during major cybersecurity incidents
• Bachelor’s degree
• Possess an active Top Secret clearance

Desired Skills

• Experience developing SOC standard operating procedures (SOPs), playbooks, runbooks, and operational workflows
• Familiarity with ServiceNow, Jira, or similar ticketing and workflow management systems
• Experience managing analyst training programs, workforce development initiatives, and career progression plans
• Ability to analyze operational trends and implement process improvements to enhance SOC effectiveness and efficiency
• Excellent written and verbal communication skills with the ability to brief technical teams, executives, and government stakeholders
• Current certification in one or more of the following: CISSP, CISM, GSOM, GCIH, GCIA, GCED, Security , or equivalent

Why Apply
If you thrive on running high-performing operations, coordinating major incidents, and improving how a SOC detects and responds, this is the role for you. You will lead a Tier 1 to Tier 3 team, strengthen 24x7 readiness, and partner across security functions to drive measurable outcomes across modern enterprise environments. Apply now to take ownership of SOC operations and help elevate service delivery and incident response effectiveness.